Reset ESXi Root Password with Host Profile
search cancel

Reset ESXi Root Password with Host Profile

book

Article ID: 323617

calendar_today

Updated On:

Products

VMware vSphere ESXi

Issue/Introduction

ESXi Host Root Password Authentication Failure

If the root password for the ESXi host fails to authenticate and you cannot access the command-line interface (CLI), it is important to note that VMware does not provide a method for recovering the original root password. In this case, the supported solution is to reinstall the ESXi host.

Environment

VMware vSphere ESXi 6.X
VMware vSphere ESXi 7.X
VMware vSphere ESXi 8.X

Resolution



Host Profile Password Reset

The host profile outlined below performs a password reset, replacing the existing root password with a new one. This process is not a password recovery mechanism; VMware does not provide tools or methods to recover the original root password of an ESXi host.

For more information on security best practices, see VMware Security Hardening Guides.

 

Change ESXi Password:

Refer to the following KB to change the ESXi host root password if the password is known - Changing ESXi password.

 

To Reset the ESXi Root Password with Host Profile

  1. Login to the vCenter vSphere Client
  2. Go to Home and then choose Host Profiles from Policies and Profiles section.
  3. Choose > Extract profile from a host.
  4. In the Extract Host Profile menu wizard > Select the host to update the password for.
  5. Name the Host Profile and click Next and then Finish to complete the capture of the host profile template.
    • The new host profile should appear on the Host Profile Objects Field.
  6. Right Click the new Host Profile or using the Actions menu choose > Edit Settings
  7. In the 'Edit Host Profile' Wizard. Uncheck all boxes.
  8. Then using the search filter search for > root
  9. Highlight and then select the check box for > root
  10. A configurable window will display the root User configuration.
  11. At the Password subsection, choose > Fixed password configuration
  12. Fill in the new password and confirm it before proceeding.
  13. Double check that all other non applicable boxes have no check marks and proceed to Finish.
  14. Once the task completes, highlight the new host profile and from the 'Actions' drop down menu choose > Attach Detach Hosts and Clusters > then Select the host in the wizard.
  15. From the Action Menu, select Check Host Compliance.
  16. From the Action Menu, select Remediate.
  17. Then Check Host Compliance.
  18. Remove the Host Profile from the Host.
    • At this time the host password should be successfully upgraded.





Note:

Host Profiles is a feature available exclusively with the VMware vSphere Enterprise Plus license. For detailed information, please refer to the official vSphere Host Profiles documentation vSphere Host Profiles

For standalone ESXi hosts, the only supported method to reset a password is to reinstall the ESXi host. Any other methods for password reset are unsupported.

Keyboard Issues: In some cases, a defective keyboard can cause login problems on an ESXi host. If you experience difficulties with known login credentials, it is recommended to test with a different physical keyboard.

 

Powered by Wolken Software